Question for AT developers

just a little question for Anti-virus and Anti-trojan developers:
"Where do you take the informations about viruses/trojans?"

I mean, to develop an AV or AT software one should create a database, but surfing the net for security sites, one will discover that each security firm has his own database, so one can't be sure to include ALL known viruses/trojans...

Is there a site that includes all technical infos about all KNOWN viruses/trojans?

Sorry, I misread/misunderstood his original post. MSDN doesn't have much info on viruses/trojans, no, but it's useful for all things API/system-related - a vital resource when analysing trojans/viruses ...

>Andreaas, thank you for your reply, so how to proceed to create a
>complete database of all <known> vir/tr?

I started collecting 8 years ago and i worked a few months for a anti virus firm ).

>How do you collect datas for ANTS, for example?

Coded a spider that "watches" big vx sites so every time a new malware is added i add it to my database ). Than just use google to find collections and samples of old malware. If you have a quite big database do some sharing with other collectors or vendors. There are many ways ).

I was just exploring the AV/AT field, to see if and how I could eventually create an AV/AT software.
The major difficult that I can see is the data-collecting process, in the sense that I can't find a reliable source of information that includes all "known" malware.
That means my eventual database will always be incomplete. Uptonow the CERT seems to be only point of reference universally adopted. But in my opinion it's not sufficient...

quoting: Andreas Haak link=board=25;threadid=6398;start=0#43366 date=1043054122]
Coded a spider that "watches" big vx sites so every time a new malware is added i add it to my database ). Than just use google to find collections and samples of old malware. If you have a quite big database do some sharing with other collectors or vendors. There are many ways ).

Click to expand...

Anyway, it's a nightmare to rely on google to find malware code, I thought there were a generally recognized site with the functions of data-collector and database linker.
Our world still needs improvements...